T T wrote:
>>> Is Context /really/ that bad/dangerous ?!
>> If an attacker would place a rogue texlua.exe in the current directory
> (not that hard on windows), then you get arbitrary code execution if
> you pick up executables from there. Is that bad enough?
But wouldn't they have to place 'our' mtxrun.dll in the current
directory as well then? Doesn't sound very likely to me.
Best wishes,
Taco